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IN THE CLAIMS 

Please amend Claims 1-6, 8-14, 16 and 17 as indicated. 

1 . (Currently Amended) A computer program product readable storage media comprising 
instructions for determining that a group has been improperly assigned a privilege level higher 
than user level privilege, the group including a plurality of members, said computer program 
product instructions comprising: 

a computer readable medium; 

first program instructions to compare each member within the group to a first list, the first 
list including names of trusted individuals authorized to perform system administrator tasks ; 

second program instructions to determine whether the group includes at least one suspect 
member not on the first list, and if so, generate a report identifying said at least one suspect 
member not on the first list and the group in which said at least one suspect member is a 
member; and 

third program instructions to determine whether the group has a group name on a second 
list , the second list including of group names generally used for a group with untrusted user level 
privilege, and if so, generate a report indicating that the group has a group name generally used 
for a group having untrusted user level privilege, such that members of the group are revealed as 
potentially not trusted suspect ; and 

said first, second and third program instructions are recorded on said medium computer 
readable storage media . 
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2. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1 wherein there are a plurality of applications or application instances, and a same 
group can be assigned different privilege levels for involvement with different applications or 
application instances; and said third program instructions makes its determination separately for 
each application or application instance. 

3. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1, further comprising: 

fourth program instructions to determine whether the group has a group name not 
included on a third list, the third list including group names generally used for a group having a 
privilege level higher than user level privilege, and if so, generate a report indicating that the 
group has a group name not on the third list, such that members of the group are revealed as 
potentially not trusted suspect ; 

wherein said fourth program instructions are recorded on said medium computer readable 
storage media . 

4. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1, wherein said second program instructions determine whether the group includes 
at least one suspect member not on the first list, and if not, generate a report indicating that the 
group has all its members on the first list. 
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5 . (Currently Amended) A computer program product readable storage media as set 
forth in claim 1, further comprising fourth program instructions, responsive to determining that 
the group has a group name on the second list, to determine whether each member of the group is 
on the first list; and wherein 

said fourth program instructions are recorded on said medium computer readable storage 

media . 

6. (Currently Amended) A computer system for determining that a group has been 
improperly assigned a privilege level higher than user level privilege, the group including a 
plurality of members, said computer system comprising: 

a central processing unit, a computer readable memory and a computer readable storage 

media; 

means first program instructions for comparing members within the group to a first list, 
the first list including names of trusted individuals authorized to perform system administrator 
tasks ; 

means second program instructions for determining whether the group includes at least 
one suspect member not on the first list, and if so, generating a report identifying the at least one 
suspect member and the group in which the at least one suspect member is included; and 

means third program instructions for determining whether the group has a group name on 
a second list , the second list including of group names generally used for a group with untrusted 
user level privilege, and if so, generating a report indicating that the group has a group name 



4 



Application No. 10/791,321 
Filed: March 2, 2004 
Attorney Docket No.: END920030127US1 (1397-12U) 

generally used for a group with untrusted user level privilege, such that the members of the 

group are revealed as potentially not trusted suspect, 

wherein said first, second, and third program instructions are stored on said computer 

readable storage media for execution by said central processing unit via said computer readable 

memory . 

7. (Previously Presented) A computer system as set forth in claim 6 wherein there 
are a plurality of applications or application instances, and a same group can be assigned 
different privilege levels for involvement with different applications or application instances; and 
said means for determining whether the group has a group name generally used for a group with 
user level privilege makes its determination separately for each application or application 
instance. 

8. (Currently Amended) A computer system as set forth in claim 6, further 
comprising: 

means fourth program instructions for determining whether the group has a group name 
not on a third list, the third list including group names generally used for a group having a 
privilege level higher than user level privilege, and if so, generating a report indicating that the 
group has a group name not generally used for a group with the higher level privilege, such that 
the members of the group are revealed as potentially not trusted suspect, said fourth program 
instructions are stored on said computer readable storage media for execution by said central 
processing unit via said computer readable memory . 
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9. (Currently Amended) A computer system as set forth in claim 6, wherein said 
means second program instructions for determining whether the group includes at least one 
suspect member not on the first list determines that the group has all of its members on the list of 
trusted individuals, said means and generates a report indicating that the group has all its 
members on the first list. 

10. (Currently Amended) A computer system as set forth in claim 6, wherein 
responsive to determining that the group has a group name generally used for a group with 
untrusted user level privilege, further comprises means for determining whether the members of 
the group are on the first list. 

1 1. (Currently Amended) A computer program product readable storage media 
comprising instructions for determining that a group has been improperly assigned a privilege 
level higher than user level privilege, the group including a plurality of members, said computer 
program product instructions comprising: 

a computer readable medium; 

first program instructions to compare each member within the group to a first list, the first 
list including names of trusted individuals authorized to perform system administrator tasks ; 

second program instructions to determine whether the group includes at least one suspect 
member not on the first list, and if so, generate a report identifying said at least one suspect 
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member not on the first list and the group in which said at least one suspect member is a 

member; and 

third program instructions to determine whether the group has a group name not on a 
second list , the second list including of group names generally used for a group having a 
privilege level higher than user level privilege, and if so, generate a report indicating that the 
group has a group name not generally used for a group having a privilege level higher than user 
level privilege, such that the members of the group are revealed as potentially not trusted 
suspect ; 

said first, second and third program instructions are recorded on said medium computer 
readable storage media . 

12. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1 1 wherein there are a plurality of applications or application instances, and a 
same group can be assigned different privilege levels for involvement with different applications 
or application instances; and said third program instructions makes its determination separately 
for each application or application instance. 

13. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1 1 wherein said second program instructions determine whether the group has at 
least one member not on the first list, and if not, generate a report indicating that the group has 
all its members on the first list. 
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14. (Currently Amended) A computer program product readable storage media as set 
forth in claim 1 1 further comprising fourth program instructions, responsive to determining that 
the group has a group name on the second list, to determine whether each member of the group is 
on the first list; and wherein 

said fourth program instructions are recorded on said medium computer readable storage 

media . 

15. (Cancelled) 

16. (Currently Amended) A computer program product readable storage media 
comprising instructions for managing privileges of groups, said computer program product 
instructions comprising: 

a computer readable medium; 

first program instructions to determine that a group with an actual privilege level higher 
than untrusted user level privilege has a group name on a list of group names generally used for a 
group with untrusted user level privilege; and 

second program instructions, responsive to a determination of a group with an actual 
privilege level higher than untrusted user level privilege with a group name generally used for a 
group with a privilege level no higher than untrusted user level privilege, to compare members of 
said group to a list of trusted individuals authorized to perform system administrator tasks , and if 
any suspect member of said group does not appear on said list of trusted individuals, remove said 
suspect member from said group; and wherein 
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said first and second program instructions are recorded on said medium computer 

readable storage media . 

17. (Currently Amended) A computer program product readable storage media 
comprising instructions for managing privileges of groups, said computer program product 
instructions comprising: 

a computer readable medium; 

first program instructions to determine that a group with an actual privilege level higher 
than user level privilege has a group name not on a list of group names generally used for a 
group with privilege level higher than user level privilege; and 

second program instructions, responsive to a determination of a group with an actual 

privilege level higher than user level privilege with a group name not generally used for a group 

with privilege level higher than user level privilege, to compare members of said group to a list 

of trusted individuals authorized to perform system administrator tasks , and if any suspect 

member of said group does not appear on said list of trusted individuals, lower the actual 

privilege level of said group; and 

said first and second program instructions are recorded on said medium computer 
readable storage media . 
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